CN109460645A - Distributed architecture-based permission service method, device and system - Google Patents
Distributed architecture-based permission service method, device and system Download PDFInfo
- Publication number
- CN109460645A CN109460645A CN201811376006.3A CN201811376006A CN109460645A CN 109460645 A CN109460645 A CN 109460645A CN 201811376006 A CN201811376006 A CN 201811376006A CN 109460645 A CN109460645 A CN 109460645A
- Authority
- CN
- China
- Prior art keywords
- user
- data
- permission
- data resource
- interface
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Abstract
The invention discloses a distributed architecture-based permission service method, which can respond to a request of a user for acquiring data resources, acquire role information of the user, determine a data interface, further call the data interface to acquire data resources in a plurality of subsystems of a distributed architecture, determine role data permission of the role information, filter the data resources uniformly according to the role data permission, and finally feed back the filtered data resources to the user. Therefore, when the method acquires the data resources requested by the user from each system in the distributed architecture, the data resources on each system are integrated and filtered uniformly without filtering according to the respective filtering logic of each system on each system, so that the problem of compiling the filtering logic for each system is avoided, and the method is very convenient for later maintenance. In addition, the invention also provides a permission service device and a permission service system based on the distributed architecture, and the function of the permission service device corresponds to that of the method.
Description
Technical field
The present invention relates to rights management field, in particular to the rights service method, apparatus of a kind of distributed structure/architecture and it is
System.
Background technique
Permission resource is broadly divided into two classes, i.e. function privilege and data permission.Function privilege is mainly menu and interface two
Kind, function privilege has versatility, and still, data permission realization is had nothing in common with each other.
Currently, web site architecture is developed from monomer applications toward distributed structure/architecture, it is more there are multiple systems in distributed structure/architecture
A service.Processing scheme originally is mainly based upon monomer system, and each system respectively safeguards the permission of oneself, such side
Formula, which moves to distributed system, a following two disadvantage: first, it needs respective system to write permission filter logic, phase can not be multiplexed
Same filter logic, larger workload;Second, various permissions are dispersed in each system, bad unified management maintenance.
Summary of the invention
The object of the present invention is to provide the rights service method, apparatus and system of a kind of distributed structure/architecture, pass to solve
System rights service needs each system in respectively distributed structure/architecture to write filter logic, larger workload, and is not easy to safeguard
The problem of.
In order to solve the above technical problems, the present invention provides a kind of rights service method based on distributed structure/architecture, comprising:
The request that data resource is obtained in response to user, obtains the Role Information of user;
It determines the data-interface of the data resource, and calls multiple subsystems of the data-interface acquisition distributed structure/architecture
Corresponding data resource in system;
Determine the character data permission of the Role Information;
According to the character data permission, the data resource is filtered;
The data resource being obtained by filtration is fed back into user.
Wherein, described according to the character data permission, the data resource is filtered includes:
Determine the user data authority of user;
Determine the permission union of the character data permission Yu the user data authority;
According to the permission union, the data resource is filtered.
Wherein, before the request for obtaining data resource in response to user, the Role Information for obtaining user, comprising:
In response to the logging request of user, the identity information of user is identified;
According to the identity information, corresponding menu and menu option are provided for user, wherein the identity information and institute
State the corresponding relationship of menu and the menu option be it is pre-set, the menu option is corresponding with interface.
Wherein, the identity information includes ordinary user and maintenance of information user, and the interface includes data-interface and function
It can interface.
Wherein, described according to the identity information, corresponding menu is provided for user and menu option includes:
If the identity information is maintenance of information user, maintenance menu and multiple maintenance options are provided for user;
Described according to the identity information, after providing corresponding menu and menu option for user, comprising:
Obtain the maintenance information of user's input;
Role Information and the use according to the maintenance information to the character data permission, the ordinary user
User data permission is safeguarded.
Wherein, before the request for obtaining data resource in response to user, the Role Information for obtaining user, comprising:
In response to user to the acquisition request of functional resources, the Role Information of user is obtained;
It determines the functional interface of the functional resources, and calls multiple subsystems of the functional interface acquisition distributed structure/architecture
Corresponding functional resources in system;
Determine the role function permission of the Role Information;
According to the role function permission, judge whether user has the permission for obtaining the functional resources;
If user does not have the permission for obtaining the functional resources, prompt user that can not obtain the functional resources.
In addition, the present invention also provides a kind of rights service device based on distributed structure/architecture, comprising:
Role Information obtains module: for obtaining the request of data resource in response to user, obtaining the Role Information of user;
Data-interface determining module: for determining the data-interface of the data resource, and the data-interface is called to obtain
Take corresponding data resource in multiple subsystems of distributed structure/architecture;
Character data permission determining module: for determining the character data permission of the Role Information;
Filtering module: for being filtered to the data resource according to the character data permission;
Data feedback module: for the data resource being obtained by filtration to be fed back to user.
Finally, the present invention also provides a kind of rights service system based on distributed structure/architecture, comprising: client, service
Gateway, distributed structure/architecture system, rights service database;
Wherein, the distributed server architecture system includes multiple servers, for storing data resource;
The rights service database is used to save the corresponding relationship of Role Information Yu character data permission;
The client is used to obtain the request of data resource in response to user, obtains the Role Information of user, and by institute
The data-interface for stating data resource is sent to the gateway, is also used to determine the angle according to the rights service database
The character data permission of color information, and receiving after the data resource that the gateway is sent, according to the role
Data permission is filtered the data resource, and the data resource being obtained by filtration is fed back to user;
The gateway is used to obtain and the data-interface from multiple subsystems of the distributed structure/architecture system
Corresponding data resource, and the client is sent by the data resource.
A kind of rights service method based on distributed structure/architecture provided by the present invention is able to respond and obtains data in user
The request of resource obtains the Role Information of user, and determines the data-interface of the data resource, and then the data is called to connect
Mouth obtains corresponding data resource in multiple subsystems of distributed structure/architecture, then determines the character data power of the Role Information
Limit, and according to the character data permission, unified filtering is carried out to the data resource, finally provides the data being obtained by filtration
Source feeds back to user.As it can be seen that this method from system each in distributed structure/architecture obtain user request data resource when, no
It needs to be filtered according to the respective filter logic of each system respectively in each system, but by the data in each system
Resource consolidation, and be uniformly filtered, the problem of writing filter logic for each system is avoided, and tie up quite convenient for the later period
Shield.
In addition, the present invention also provides a kind of rights service device and system based on distributed structure/architecture, effect with it is upper
The effect for stating method is corresponding, and which is not described herein again.
Detailed description of the invention
It, below will be to embodiment or existing for the clearer technical solution for illustrating the embodiment of the present invention or the prior art
Attached drawing needed in technical description is briefly described, it should be apparent that, the accompanying drawings in the following description is only this hair
Bright some embodiments for those of ordinary skill in the art without creative efforts, can be with root
Other attached drawings are obtained according to these attached drawings.
Fig. 1 is a kind of implementation process of the rights service embodiment of the method one based on distributed structure/architecture provided by the invention
Figure;
Fig. 2 is a kind of implementation process of the rights service embodiment of the method two based on distributed structure/architecture provided by the invention
Figure;
Fig. 3 is the classification of resource in a kind of rights service embodiment of the method two based on distributed structure/architecture provided by the invention
Schematic diagram;
Fig. 4 is a kind of structural block diagram of the rights service Installation practice based on distributed structure/architecture provided by the invention;
Fig. 5 is a kind of structural schematic diagram of the rights service system embodiment based on distributed structure/architecture provided by the invention.
Specific embodiment
Core of the invention is to provide a kind of rights service method, apparatus and system based on distributed structure/architecture, avoids
The workload of filter logic is write for system each in distributed structure/architecture, and is convenient for later maintenance.
In order to enable those skilled in the art to better understand the solution of the present invention, with reference to the accompanying drawings and detailed description
The present invention is described in further detail.Obviously, described embodiments are only a part of the embodiments of the present invention, rather than
Whole embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art are not making creative work premise
Under every other embodiment obtained, shall fall within the protection scope of the present invention.
The present invention provides a kind of rights service method, apparatus and system based on distributed structure/architecture, a kind of main permission
Method of service.In application system, permission (Permission) shows as the operation to functional module, deletes to upper transmitting file
Change, the visibility control of some button, some picture in the access of menu or even the page, that is to say, that according to the present invention
Permission includes that data resource and data resource are combined with mode of operation.
A kind of rights service method based on distributed structure/architecture provided by the invention is introduced below, it is real referring to Fig. 1
Applying example one includes:
Step S101: the request of data resource is obtained in response to user, obtains the Role Information of user.
Step S102: determining the data-interface of the data resource, and the data-interface is called to obtain distributed structure/architecture
Multiple subsystems in corresponding data resource.
Step S103: the character data permission of the Role Information is determined.
Step S104: according to the character data permission, the data resource is filtered.
Step S105: the data resource being obtained by filtration is fed back into user.
As it can be seen that a kind of rights service method based on distributed structure/architecture provided by the present embodiment, is able to respond in user
The request for obtaining data resource obtains the Role Information of user, and determines the data-interface of the data resource, and then calls institute
It states data-interface and obtains corresponding data resource in multiple subsystems of distributed structure/architecture, then determine the angle of the Role Information
Color data permission, and according to the character data permission, unified filtering is carried out to the data resource, will be finally obtained by filtration
Data resource feed back to user.As it can be seen that this method is in the data for obtaining user's request from system each in distributed structure/architecture
When resource, do not need to be filtered according to the respective filter logic of each system respectively in each system, but by each system
It is data resource integrated on system, and be uniformly filtered, the problem of writing filter logic for each system is avoided, and very just
In later maintenance.
Start that a kind of rights service embodiment of the method two based on distributed structure/architecture provided by the invention is discussed in detail below,
Embodiment two is realized based on embodiment one, and is further expanded and optimized on the basis of example 1.
Referring to fig. 2, embodiment two specifically includes:
Step S201: in response to the logging request of user, the identity information of user is identified.
Specifically, can use general login blocker verify user log in token, come in this way to
The identity information at family is identified.
Step S202: according to the identity information, corresponding menu and menu option are provided for user.The identity information
S203 is entered step, when the identity when the identity information is ordinary user including ordinary user and maintenance of information user
When information is maintenance of information user, S212 is entered step.
Wherein, the identity information and the corresponding relationship of the menu and the menu option are pre-set, described
Menu option is corresponding with interface, and the interface includes data-interface and functional interface, and data-interface here is referred mainly to for obtaining
The interface of data resource is taken, and functional interface refers mainly to the interface for realizing certain operation.
Step S203: receiving the request of user, obtains the Role Information of user, and judges the request asking for data resource
It asks or enters step S204 if the request of data resource for the request of functional resources, otherwise enter step S208.
As shown in figure 3, data resource and functional resources are distinguished by the present embodiment, data permission is corresponding with function privilege
Respective rights service mode.
Step S204: the request of data resource is obtained in response to user, determines the data-interface of the data resource.
Step S205: the data-interface is called to obtain corresponding data resource in multiple subsystems of distributed structure/architecture.
Step S206: it determines the character data permission of the Role Information, and determines the user data authority of user, determine
The permission union of the character data permission and the user data authority;According to the permission union, to the data resource
It is filtered.
It is noted that as shown in figure 3, the source of data resource is divided into two kinds in the present embodiment, one kind is and uses
Family is relevant, another kind be it is relevant with role, both are handled in different ways.For example, data can
It can be the data for belonging to someone, it is also possible to belong to the data of this position of warehouse keeper, it is assumed that Zhang San is a warehouse pipe
Reason person, then, in the present embodiment, by the permission of default setting Zhang San, the data resource that Zhang San can obtain includes belonging to
The data of Zhang San individual further include the data for belonging to warehouse keeper.
Step S207: the data resource being obtained by filtration is fed back into user.
Step S208: in response to user to the acquisition request of functional resources, the functional interface of the functional resources is determined.
Step S209: the functional interface is called to obtain corresponding functional resources in multiple subsystems of distributed structure/architecture.
Step S210: the role function permission of the Role Information is determined.
Step S211: according to the role function permission, judge whether user has the permission for obtaining the functional resources.
Specifically, prompting user that can not obtain the function if user does not have the permission for obtaining the functional resources
Resource;If user has the permission of the functional resources, the functional resources are fed back into user, or the instruction according to user
Execute corresponding operation.
Step S212: if the identity information is maintenance of information user, maintenance menu and multiple maintenances are provided for user
Option.
Here maintenance option is corresponding with the interface in Fig. 3, and maintenance option is shown on menu, for directly with use
What family interacted, and each maintenance option corresponds to one or more interface, by calling these interfaces, available number
According to resource, functional resources are obtained, or even obtain the resource that data are combined with function.
Step S213: the maintenance information of user's input is obtained;
Step S214: according to the maintenance information to the Role Information of the character data permission, the ordinary user, with
And the user data authority is safeguarded.
In conclusion a kind of rights service method based on distributed structure/architecture provided by the present embodiment, be able to respond in
User obtains the request of data resource, obtains the Role Information of user, and determine the data-interface of the data resource, and then adjust
Corresponding data resource in multiple subsystems of distributed structure/architecture is obtained with the data-interface, then determines the Role Information
Character data permission unified filtering is carried out to the data resource and according to the character data permission, finally will filtering
Obtained data resource feeds back to user.As it can be seen that this method is obtaining user's request from system each in distributed structure/architecture
When data resource, do not need to be filtered according to the respective filter logic of each system respectively in each system, but will be each
It is data resource integrated in a system, and be uniformly filtered, avoid the problem of writing filter logic for each system, and ten
Divide and is convenient for later maintenance.
A kind of rights service device based on distributed structure/architecture provided in an embodiment of the present invention is introduced below, hereafter
A kind of rights service device based on distributed structure/architecture of description and a kind of above-described permission based on distributed structure/architecture take
Business method can correspond to each other reference.
Referring to fig. 4, which includes:
Role Information obtains module 401: for obtaining the request of data resource in response to user, obtaining role's letter of user
Breath;
Data-interface determining module 402: for determining the data-interface of the data resource, and the data-interface is called
Obtain corresponding data resource in multiple subsystems of distributed structure/architecture;
Character data permission determining module 403: for determining the character data permission of the Role Information;
Filtering module 404: for being filtered to the data resource according to the character data permission;
Data feedback module 405: for the data resource being obtained by filtration to be fed back to user.
A kind of rights service device based on distributed structure/architecture of the present embodiment is for realizing above-mentioned a kind of based on distribution
The rights service method of formula framework, therefore specific embodiment in the device is visible is based on distributed structure/architecture one of above
Rights service method embodiment part, for example, Role Information obtain module 401, data-interface determining module 402, role
Data permission determining module 403, filtering module 404, data feedback module 405 are respectively used to realize above-mentioned a kind of based on distribution
Step S101, S102, S103, S104, S105 in the rights service method of formula framework.So specific embodiment can join
According to the description of corresponding various pieces embodiment, herein not reinflated introduction.
In addition, since a kind of rights service device based on distributed structure/architecture of the present embodiment is for realizing one kind above-mentioned
Rights service method based on distributed structure/architecture, therefore its effect is corresponding with the effect of the above method, which is not described herein again.
In addition, the present invention also provides a kind of rights service system embodiment based on distributed structure/architecture, as shown in figure 5,
The system embodiment includes: client 501, gateway 502, distributed structure/architecture system 503, rights service database 504.
Wherein, the distributed structure/architecture system 503 includes multiple servers, for storing data resource;
The rights service database 504 is used to save the corresponding relationship of Role Information Yu character data permission;
The client 501 is used to obtain the request of data resource in response to user, obtains the Role Information of user, and will
The data-interface of the data resource is sent to the gateway 502, is also used to according to the rights service database 504 really
The character data permission of the fixed Role Information, and receiving after the data resource that the gateway 502 is sent, root
The data resource is filtered according to the character data permission, the data resource being obtained by filtration is fed back into user;
The gateway 502 connects for obtaining from multiple subsystems of the distributed structure/architecture system with the data
The corresponding data resource of mouth, and the client is sent by the data resource.
A kind of rights service system based on distributed structure/architecture provided in this embodiment is based on for realizing one kind above-mentioned
The rights service method of distributed structure/architecture, therefore specific embodiment in the system is visible one of above based on distribution
The embodiment part of the rights service method of framework, and the effect of the system is also corresponding with the effect of the above method, here not
It repeats again.
Each embodiment in this specification is described in a progressive manner, the highlights of each of the examples are with it is other
The difference of embodiment, same or similar part may refer to each other between each embodiment.For being filled disclosed in embodiment
For setting, since it is corresponded to the methods disclosed in the examples, so being described relatively simple, related place is referring to method part
Explanation.
Professional further appreciates that, unit described in conjunction with the examples disclosed in the embodiments of the present disclosure
And algorithm steps, can be realized with electronic hardware, computer software, or a combination of the two, in order to clearly demonstrate hardware and
The interchangeability of software generally describes each exemplary composition and step according to function in the above description.These
Function is implemented in hardware or software actually, the specific application and design constraint depending on technical solution.Profession
Technical staff can use different methods to achieve the described function each specific application, but this realization is not answered
Think beyond the scope of this invention.
The step of method described in conjunction with the examples disclosed in this document or algorithm, can directly be held with hardware, processor
The combination of capable software module or the two is implemented.Software module can be placed in random access memory (RAM), memory, read-only deposit
Reservoir (ROM), electrically programmable ROM, electrically erasable ROM, register, hard disk, moveable magnetic disc, CD-ROM or technology
In any other form of storage medium well known in field.
Above to a kind of rights service method, apparatus and system progress based on distributed structure/architecture provided by the present invention
It is discussed in detail.Used herein a specific example illustrates the principle and implementation of the invention, above embodiments
Explanation be merely used to help understand method and its core concept of the invention.It should be pointed out that for the common of the art
, without departing from the principle of the present invention, can be with several improvements and modifications are made to the present invention for technical staff, these
Improvement and modification are also fallen within the protection scope of the claims of the present invention.
Claims (8)
1. a kind of rights service method based on distributed structure/architecture characterized by comprising
The request that data resource is obtained in response to user, obtains the Role Information of user;
It determines the data-interface of the data resource, and the data-interface is called to obtain in multiple subsystems of distributed structure/architecture
Corresponding data resource;
Determine the character data permission of the Role Information;
According to the character data permission, the data resource is filtered;
The data resource being obtained by filtration is fed back into user.
2. the method as described in claim 1, which is characterized in that it is described according to the character data permission, the data are provided
Source, which is filtered, includes:
Determine the user data authority of user;
Determine the permission union of the character data permission Yu the user data authority;
According to the permission union, the data resource is filtered.
3. method according to claim 2, which is characterized in that in the request for obtaining data resource in response to user, obtain
Before taking the Role Information at family, comprising:
In response to the logging request of user, the identity information of user is identified;
According to the identity information, corresponding menu and menu option are provided for user, wherein the identity information and the dish
The corresponding relationship of the single and described menu option be it is pre-set, the menu option is corresponding with interface.
4. method as claimed in claim 3, which is characterized in that the identity information includes that ordinary user and maintenance of information are used
Family, the interface include data-interface and functional interface.
5. method as claimed in claim 4, which is characterized in that it is described according to the identity information, it is provided for user corresponding
Menu and menu option include:
If the identity information is maintenance of information user, maintenance menu and multiple maintenance options are provided for user;
Described according to the identity information, after providing corresponding menu and menu option for user, comprising:
Obtain the maintenance information of user's input;
According to the maintenance information to the Role Information and the number of users of the character data permission, the ordinary user
It is safeguarded according to permission.
6. the method as described in claim 1-5 any one, which is characterized in that obtain data resource in response to user described
Request, before the Role Information for obtaining user, comprising:
In response to user to the acquisition request of functional resources, the Role Information of user is obtained;
It determines the functional interface of the functional resources, and the functional interface is called to obtain in multiple subsystems of distributed structure/architecture
Corresponding functional resources;
Determine the role function permission of the Role Information;
According to the role function permission, judge whether user has the permission for obtaining the functional resources;
If user does not have the permission for obtaining the functional resources, prompt user that can not obtain the functional resources.
7. a kind of rights service device based on distributed structure/architecture characterized by comprising
Role Information obtains module: for obtaining the request of data resource in response to user, obtaining the Role Information of user;
Data-interface determining module: it for determining the data-interface of the data resource, and calls the data-interface to obtain and divides
Corresponding data resource in multiple subsystems of cloth framework;
Character data permission determining module: for determining the character data permission of the Role Information;
Filtering module: for being filtered to the data resource according to the character data permission;
Data feedback module: for the data resource being obtained by filtration to be fed back to user.
8. a kind of rights service system based on distributed structure/architecture characterized by comprising client, gateway, distribution
Architecture system, rights service database;
Wherein, the distributed server architecture system includes multiple servers, for storing data resource;
The rights service database is used to save the corresponding relationship of Role Information Yu character data permission;
The client is used to obtain the request of data resource in response to user, obtains the Role Information of user, and by the number
It is sent to the gateway according to the data-interface of resource, is also used to determine role's letter according to the rights service database
The character data permission of breath, and receiving after the data resource that the gateway is sent, according to the character data
Permission is filtered the data resource, and the data resource being obtained by filtration is fed back to user;
The gateway is used to obtain from multiple subsystems of the distributed structure/architecture system corresponding with the data-interface
Data resource, and send the client for the data resource.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201811376006.3A CN109460645A (en) | 2018-11-19 | 2018-11-19 | Distributed architecture-based permission service method, device and system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201811376006.3A CN109460645A (en) | 2018-11-19 | 2018-11-19 | Distributed architecture-based permission service method, device and system |
Publications (1)
Publication Number | Publication Date |
---|---|
CN109460645A true CN109460645A (en) | 2019-03-12 |
Family
ID=65610890
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201811376006.3A Pending CN109460645A (en) | 2018-11-19 | 2018-11-19 | Distributed architecture-based permission service method, device and system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN109460645A (en) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111416813A (en) * | 2020-03-16 | 2020-07-14 | 山东浪潮通软信息科技有限公司 | Data filtering system based on reverse proxy service and implementation method |
CN112685511A (en) * | 2020-12-31 | 2021-04-20 | 中国农业银行股份有限公司 | Method and device for commercial intelligent warehouse high-performance routing |
CN116881942A (en) * | 2023-07-21 | 2023-10-13 | 广州三叠纪元智能科技有限公司 | Role authority verification method and system for distributed system |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101414253A (en) * | 2007-10-17 | 2009-04-22 | 华为技术有限公司 | Method and system for managing authority |
US20150058460A1 (en) * | 2013-08-22 | 2015-02-26 | Red Hat, Inc. | Granular permission assignment |
CN105187365A (en) * | 2015-06-04 | 2015-12-23 | 北京邮电大学 | Method and device for access control based on roles and data items |
CN106302435A (en) * | 2016-08-11 | 2017-01-04 | 上海泛微网络科技股份有限公司 | A kind of based on grouping of the world economy classification decentralized management system |
-
2018
- 2018-11-19 CN CN201811376006.3A patent/CN109460645A/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101414253A (en) * | 2007-10-17 | 2009-04-22 | 华为技术有限公司 | Method and system for managing authority |
US20150058460A1 (en) * | 2013-08-22 | 2015-02-26 | Red Hat, Inc. | Granular permission assignment |
CN105187365A (en) * | 2015-06-04 | 2015-12-23 | 北京邮电大学 | Method and device for access control based on roles and data items |
CN106302435A (en) * | 2016-08-11 | 2017-01-04 | 上海泛微网络科技股份有限公司 | A kind of based on grouping of the world economy classification decentralized management system |
Non-Patent Citations (2)
Title |
---|
中国地质环境监测院: "地质灾害防治信息化建设理论与技术方法", 《地质灾害防治信息化建设理论与技术方法》 * |
李小华,周毅: "医院信息系统数据库技术与应用", 《医院信息系统数据库技术与应用》 * |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111416813A (en) * | 2020-03-16 | 2020-07-14 | 山东浪潮通软信息科技有限公司 | Data filtering system based on reverse proxy service and implementation method |
CN112685511A (en) * | 2020-12-31 | 2021-04-20 | 中国农业银行股份有限公司 | Method and device for commercial intelligent warehouse high-performance routing |
CN116881942A (en) * | 2023-07-21 | 2023-10-13 | 广州三叠纪元智能科技有限公司 | Role authority verification method and system for distributed system |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10848520B2 (en) | Managing access to resources | |
US10958671B2 (en) | Securing services in a networked computing environment | |
RU2598324C2 (en) | Means of controlling access to online service using conventional catalogue features | |
JP6013594B2 (en) | Locally assisted cloud-based storage | |
KR101752082B1 (en) | Development-environment system, development-environment device, and development-environment provision method and computer readable medium recording program | |
KR101798471B1 (en) | Image analysis and management | |
US20190097807A1 (en) | Network access control based on distributed ledger | |
US8631477B2 (en) | Lifecycle management of privilege sharing using an identity management system | |
CN109286633A (en) | Single sign-on method, device, computer equipment and storage medium | |
US8108907B2 (en) | Authentication of user database access | |
CN109460645A (en) | Distributed architecture-based permission service method, device and system | |
WO2013173111A2 (en) | Cloud-based data item sharing and collaboration among groups of users | |
KR20090106541A (en) | Time based permissioning | |
CN108924124B (en) | File access method, device, equipment and readable storage medium | |
US11126460B2 (en) | Limiting folder and link sharing | |
WO2018119589A1 (en) | Account management method and apparatus, and account management system | |
CN111158878A (en) | Resource transfer request thread control method, device and storage medium | |
CN109814946A (en) | A kind of method and apparatus for realizing distributed storage in XenServer | |
CN105763545B (en) | A kind of BYOD method and device | |
CN109743179A (en) | A kind of electronics license signs and issues method on demand | |
CN114666161B (en) | Component security policy management method, device, equipment and storage medium | |
JP2014203461A (en) | Desktop sharing system and its method | |
CN113127258A (en) | Data backup method, device, equipment and medium | |
CN114070856B (en) | Data processing method, device, system, operation and maintenance auditing equipment and storage medium | |
CA2854540C (en) | Managing cross perimeter access |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information |
Address after: 410000 No. 1501-4, building 9, Xincheng science and Technology Park, No. 588, Yuelu West Avenue, Changsha high tech Development Zone, Changsha City, Hunan Province Applicant after: Hunan Shuiyang Technology Co.,Ltd. Address before: 410000 No. 1501-4, building 9, Xincheng science and Technology Park, No. 588, Yuelu West Avenue, Changsha high tech Development Zone, Changsha City, Hunan Province Applicant before: HUNAN YUJIA TECHNOLOGY Co.,Ltd. |
|
CB02 | Change of applicant information | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20190312 |
|
RJ01 | Rejection of invention patent application after publication |